Re: Firewalls management tools

["Nikhil Wagholikar" <visitnikhil () gmail com>]

Hello Firewalls,

As far as "Improving Firewall rules set on the complete firewall pool"
is concerned, there is a tool called "Firesec" from NII Consulting.

Firesec helps in solving the following problems about Firewall rule set:

1. Redundant rules - rules which are subsets or supersets of each other
2. Unused rules - rules which are simply not in use at all
3. Shadow rules - rules which are in contradiction to each other
4. Groupable rules - rules which could be made simpler by grouping
together common elements

More Information about Firesec can be obtained on following link:
http://www.niiconsulting.com/products/Firesec.html

---
Nikhil Wagholikar
Information Security Analyst
Network Intelligence India Pvt. Ltd.
Web: http://www.niiconsulting.com/
Security Products: http://www.niiconsulting.com/products.html


On 17 Mar 2008 15:17:29 -0000, <firewalls () securityfocus com> wrote:
> Hi!
>
> Working on multiple firewalls equipments (checkpoint / Fortinet / Netscreen…), I have identified two main subjects to 
> improve our management tasks:
>
> -    Improving firewall rules set on the complete firewall pool;
>
> -    Mapping network flows :
>
>        Being able to list all (authorised) flows between two hosts or subnets;
>
>        Being able to quickly find a firewall with a deny rule on an operational flow;
>
> -    Track and control device configuration
>
>
> In order to reach our goal, I have identified the following (-commercial-) products:
>
> - Firewall Analyser (Algosec)
>
> - Skybox assure
>
> - Firemon from secure Passage
>
> - SecureTrack from Tufin
>
> - RedSeal SRM (more wide product but it seems to respond to my primary purpose)
>
> - Firewall manager from Solsoft.
>
>
> => Does anyone have a first experience on this kind of product?
>
> => Do you think it would be better to use several firewall management solutions from each specific vendor?
>
>
>
> Thank You!